Bug 1479501 - Disable TLS version fallback, r=ekr, a=lizzard
authorMartin Thomson <martin.thomson@gmail.com>
Fri, 10 Aug 2018 12:10:35 +1000
changeset 478387 f3d5a8acef59
parent 478386 fe256fdb428c
child 478388 ffb21272c4ce
push id9646
push usermartin.thomson@gmail.com
push dateMon, 13 Aug 2018 03:07:31 +0000
treeherdermozilla-beta@f3d5a8acef59 [default view] [failures only]
perfherder[talos] [build metrics] [platform microbench] (compared to previous push)
reviewersekr, lizzard
bugs1479501
milestone62.0
Bug 1479501 - Disable TLS version fallback, r=ekr, a=lizzard
security/manager/ssl/security-prefs.js
--- a/security/manager/ssl/security-prefs.js
+++ b/security/manager/ssl/security-prefs.js
@@ -1,15 +1,15 @@
 /* This Source Code Form is subject to the terms of the Mozilla Public
  * License, v. 2.0. If a copy of the MPL was not distributed with this
  * file, You can obtain one at http://mozilla.org/MPL/2.0/. */
 
 pref("security.tls.version.min", 1);
 pref("security.tls.version.max", 4);
-pref("security.tls.version.fallback-limit", 3);
+pref("security.tls.version.fallback-limit", 4);
 pref("security.tls.insecure_fallback_hosts", "");
 pref("security.tls.enable_0rtt_data", false);
 
 pref("security.ssl.treat_unsafe_negotiation_as_broken", false);
 pref("security.ssl.require_safe_negotiation",  false);
 pref("security.ssl.enable_ocsp_stapling", true);
 pref("security.ssl.enable_false_start", true);
 pref("security.ssl.enable_alpn", true);